Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2041	6.5	警告 Network	hono	hono	honoにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44456	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2042	5.3	警告 Network	hono	hono	honoにおける重要な情報を含むキャッシュの使用に関する脆弱性	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-44457	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2043	4.3	警告 Network	hono	hono	honoにおける複数の脆弱性	CWE-116 CWE-74	CVE-2026-44458	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2044	3.8	低 Network	hono	hono	honoにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-44459	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2045	7.5	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-44573	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2046	8.1	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-44574	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2047	7.5	重要 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-44575	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2048	5.9	警告 Network	Vercel, Inc. (旧 Zeit, Inc.)	Next.js	Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-44577	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2049	10	緊急 Network	Peerigon	angular-expressions	Peerigonのangular-expressionsにおけるEval インジェクションに関する脆弱性	CWE-95 Evalインジェクション	CVE-2026-44643	2026-05-15 10:57	2026-05-11	Show	GitHub Exploit DB Packet Storm

2050	7.7	重要 Network	Grav CMS	grav	Grav CMSのgravにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-44738	2026-05-15 10:57	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311641	4.6	MEDIUM Physics	samsung	android	Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles.	NVD-CWE-noinfo	CVE-2024-49402	2024-11-13 00:09	2024-11-6	Show	GitHub Exploit DB Packet Storm

311642	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: x86: fix user address masking non-canonical speculation issue It turns out that AMD has a "Meltdown Lite(tm)" issue with non-cano…	CWE-203 Information Exposure Through Discrepancy	CVE-2024-50102	2024-11-13 00:08	2024-11-6	Show	GitHub Exploit DB Packet Storm

311643	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nfsd: fix race between laundromat and free_stateid There is a race between laundromat handling of revoked delegations and a clien…	CWE-416 Use After Free	CVE-2024-50106	2024-11-13 00:07	2024-11-6	Show	GitHub Exploit DB Packet Storm

311644	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc Commit 15c7fab0e047 ("ASoC: qcom: Move Soundwire runtime stream al…	CWE-476 NULL Pointer Dereference	CVE-2024-50105	2024-11-13 00:06	2024-11-6	Show	GitHub Exploit DB Packet Storm

311645	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sdm845: add missing soundwire runtime stream alloc During the migration of Soundwire runtime stream allocation from t…	CWE-476 NULL Pointer Dereference	CVE-2024-50104	2024-11-13 00:05	2024-11-6	Show	GitHub Exploit DB Packet Storm

311646	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices Previously, the domain_context_clear() function incorrectl…	NVD-CWE-noinfo	CVE-2024-50101	2024-11-12 23:59	2024-11-6	Show	GitHub Exploit DB Packet Storm

311647	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: USB: gadget: dummy-hcd: Fix "task hung" problem The syzbot fuzzer has been encountering "task hung" problems ever since the dummy…	NVD-CWE-noinfo	CVE-2024-50100	2024-11-12 23:57	2024-11-6	Show	GitHub Exploit DB Packet Storm

311648	-		-	-	A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204. It has been classified as critical. Affected is an unknown function of the file /manager/frontdesk/online_status…	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11051	2024-11-12 22:56	2024-11-10	Show	GitHub Exploit DB Packet Storm

311649	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Chaser324 Featured Posts Scroll allows Stored XSS.This issue affects Featured Posts Scroll: from n/a through 1.25.	CWE-352 Origin Validation Error	CVE-2024-51647	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm

311650	-		-	-	The SysBasics Customize My Account for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 2.7.29 due to ins…	CWE-79 Cross-site Scripting	CVE-2024-10837	2024-11-12 22:56	2024-11-9	Show	GitHub Exploit DB Packet Storm